HSE (High Speed Encryption) from Thales is a powerful option for protecting high-speed data. Therefore, this solution was designed to meet a recurring scenario of increased demand for high-speed networks. Driven by data migration and storage in the cloud, real-time global collaboration, 5G and the expectation of greater bandwidth to the edge and the need for larger and faster aggregation points.
Because of this, network data in motion is constantly under attack. Cybercriminals are stealing high-value data: intellectual property, government and defense secrets, and scientific and medical research data.
These are just a few examples. Still, many companies have a cliché thinking that their organization is not important enough for their data to be stolen. We hope you’re not one of them.
And if you’ve got as far as this article, it’s because you’re curious to know how the HSE can help your company’s high-speed data security.
HSE: What is it?
Thales’ HSE solutions for high-speed encryption provide a single platform to encrypt everywhere. From network traffic between data centers and headquarters, to backup and disaster recovery sites, whether local or in the cloud. They also use Layer 2 and Layer 3 encryption to guarantee security without compromise.
Therefore, the maximum throughput with minimal latency is guaranteed. So customers can better protect their data, video, voice and metadata against espionage, surveillance and overt and covert interception – all at an affordable cost and without compromising performance.
There are a variety of HSE network encryptors to ensure the right combination of features and capacity adapted to diverse needs and budgets. Above all, the products are fully interoperable, allowing a single platform to be used to centrally manage single customer links or distributed networks.
Each of the products offered can support up to 512 simultaneous encrypted connections. The hardware encryptors are certified to FIPS 140-2 Level 3 and Common Criteria EAL +2, EAL 4+.
Check out the specifications for each one:
CN9000 Network Encryptors
Delivery of 100,000,000,000 bits per second of encrypted data with high assurance and security. It provides mega-scale data security (100 Gbps), with the lowest latency in the industry (<2μs).
CN6000 Network Encryptors
It offers variable speed licenses from 100 Mbps to 10 Gbps. Pos multi-port design makes this variable encryptor, with speed licenses of up to 40 Gbps (4×10 Gbps), highly flexible and economical.
CN4000 Network Encryptors
They are versatile and compact, offering encryption from 10 Mbps to 1 Gbps in a small form factor (SFF) chassis. It is therefore ideal for branch offices and remote locations, offering high-performance encryption without compromising network performance.
CV1000 Virtual Encryptor
The first resilient virtual encryptor, it is instantly scalable and can be deployed quickly across hundreds of network links, providing robust encryption protection for data in motion. The Thales CV1000 is a Virtual Network Function (VNF) that offers an agile network and reduces capital expenditure requirements.
It is therefore ideal for organizations that are virtualizing network functions and taking advantage of Software Defined Networking (SDN).
Benefits of HSE solutions
1. Robust security for sensitive traffic
All HSE encryptors offer robust encryption and FIPS 140-2 level 3 tamper-proof key management capabilities. In addition, they are rigorously tested and certified to comply with the requirements of the Common Criteria of the Federal Information Processing Standard (FIPS).
In addition, they have been evaluated by organizations such as the Defense Information Systems Agency (DISA UC APL) and NATO. They meet the other specifications for Suite B cryptographic algorithms (AES-256, ECDSA, ECDH and SHA-512) for secure communications. Using NIST-certified random number generators.
2. Maximum Performance and High Availability
Thales’ high-speed encryption solutions provide maximum uptime in the most demanding, high-performance environments. They have latency close to zero and can operate in full-duplex mode at full line speed, without the risk of packet loss .
Furthermore, the small amount of latency is deterministic and unaffected by the size of the packet. There is also a zero overhead option available for optimum performance. And for better management, they present descriptive diagnoses. They provide administrators with advance warning of potential problems.
3. Great flexibility
You will have flexible, supplier-independent interoperability at your disposal. The solutions are compatible with all the main suppliers. There is a wide range of security objectives and environments, being able to adapt to constantly evolving security and network requirements.
The product line supports network speeds from 10 Mbps to 100 Gbps, and the platforms range from single-port to multi-port devices and are available in both hardware and virtual options.
4. Crypto-agility
This means that all products support customizable encryption for a wide range of elliptical and custom curve supports. The devices also allow you to bring your own entropy.
The crypto-agile platform enables responsive deployment of next-generation or customized algorithms.
In response to the quantum threat, Thales’ network encryptors already use Quantum Key Distribution (QKD) and Quantum Random Number Generation (QRNG) capabilities for data security.
(QKD) and Quantum Random Number Generation (QRNG) capabilities for data security.
5. Independent mode of transport
Thales’ high-speed encryption solutions are the first to offer Transport Independent Mode (TIM). An encryption of data in motion that is independent of the network layer (layers 2, 3 and 4) and protocol agnostic.
By supporting Layer 3, they provide network operators with configuration options using TCP/IP routing to ensure the security of critical data.
About the Eval Tecnologia and Thales partnership
The partnership between Eval and Thales represents a strategic alliance to offer cutting-edge technological solutions. Together, these companies combine expertise and innovation to meet market demands with excellence.
The combination of Eval Tecnologia’s resources and Thales’ experience results in robust and secure solutions capable of tackling the most complex challenges.
And all that’s missing from this partnership is your company. So ensure data protection on the move.
